top of page
Algemene Verordening Gegevensbescherming

General Data Protection Regulation

The General Data Protection Regulation (GDPR) is a European regulation that aims to protect EU citizens from privacy and data breaches. Since May 2018 the law became enforceable, bringing a lot of change for businesses in every sector in the whole of Europe. Are you already aware what the consequences are for your organization? Protify carries out a Data Protection Impact Assessment (DPIA) to help you get on the right track.


The GDPR ensures:
  • Clarity, transparency and strengthening of privacy rights

  • Formalizing supervisory authorities

  • More responsibility for organizations


The regulation applies if the data subject (the person) and/or the data controller or processor (the organization) live in or are established in Europe. This means that it includes storing and processing personal data of EU citizens outside of Europe.


Since May 2018, when the regulation went into effect, there is only one European law and one Data Protection Authority (DPA). The national DPAs, for example the Autoriteit Persoonsgegevens in The Netherlands, are coordinated by one European Data Protection Board.


Data Protection Impact Assessment

Organizations must comply with the GDPR. By carrying out a DPIA the privacy risks are analyzed in a structured and clear way. This helps organizations to be in control and tackle privacy risks. Also, a DPIA stimulates organizations to think about important questions, such as:

  • What is the impact of the project on the privacy of the involved parties (mostly the people you process the data of)?

  • What are the risks for the involved parties and your organization?

  • Is there an approach with less consequences regarding privacy?


The GDPR has a lot of impact on organizations across Europe. Would you like to know more about the GDPR or a DPIA? Contact one of our consultants for more information. We will gladly help you.


More information

  • Years of experience with certification

  • Implementation of GDPR within the existing business operations

  • No complicated books, but clear and to-the-point policies

  • Personal involvement of our consultants

  • Certified within a couple of months

bottom of page